A customer needs an alternative to storing their plain text secrets in their source-code management (SCM) system. How should the customer achieve this using Google Cloud Platform?
A.
Use Cloud Source Repositories, and store secrets in Cloud SQL.
B.
Encrypt the secrets with a Customer-Managed Encryption Key (CMEK), and store them in Cloud Storage.
C.
Run the Cloud Data Loss Prevention API to scan the secrets, and store them in Cloud SQL.
D.
Deploy the SCM to a Compute Engine VM with local SSDs, and enable preemptible VMs.
I guess this question was written prior to end of 2019, because Secret Manager is definitely the preferred solution nowadays.
B is best of some bad options.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
FatCharlie
Highly Voted 3 years, 12 months agoHateMicrosoft
Highly Voted 3 years, 8 months ago3fd692e
Most Recent 1 month agostandm
1 year, 6 months agoDevXr
1 year, 11 months agoshayke
1 year, 11 months agohero0321
2 years, 1 month agoAwesomeGCP
2 years, 1 month agoGCP72
2 years, 3 months agogcpgurus
2 years, 5 months agoRaghucs
3 years agosaurabh1805
4 years agoArizonaClassics
4 years, 4 months agoKILLMAD
4 years, 8 months ago